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| (57) Abstract 

In a method and a de- 
vice for partial encryption and 
nrogrcssive transmission of im 
^Tfint section of the un- 
file is compressed at reduced 
quality without decryption, and 
f^nd section of the unage 

file is encrypted. Users having 
^ to appropriate decryp^ 
keywords can decrypt this sec 
oXSdon, Tt» first section 
together with the decrypted sec- 
^ section can tr^ be vi C w«l 

as a full quality image. The stor 
^cspac2 required for stonngdK 

first and section <°gf« is «; 
sennally the same as the stor 
«e space required for storing 
Z unencrypted fall qual«9 
Zc By using the method and 
gieei described herein «or- 
aee and bandwidth requirements 
for partially encrypted images. s 
reduced. Furthermore, object 
based composition and process- 
ing of encrypted objects are fa- 
cilitated, and ROIs can be en 




restored in the compressed domain 
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» METHOD »D A DEVICE FOR ENCRYPTION OF IMAGES 

TECHNICAL FIEIiD ^ ^ ^ a 4evice £or 

The present invention relates 
encrypting images - 

m ™rrp INVENTION AND PRIOR ART 

BACKGROOND OF THE tech nical field which becomes 

Encryption of digital data is a t ^formation or 

important when ™Ut£ and = ^ paying £or 

inf ormation^which only ^ ^ ^ £or ^ 

^ suc& nethods can al so be applied also 

^al iSTdata. Examples of . encryption methods are DBS, 
triple DBS and the public-key RSA method. 

, m be stored on servers and distributed over a 
Digital mages can tota . ^es can also 

telecommunication network a ^ „ such as a cD- R o». 

be distributed using a COBtrol that suits 

service P^^^^^ntext it might be suitable to 

rrter Li-to ~ ~ — - — 

to all image data. 

a be offered for sale on the Internet. 
News photographs can e.g. cust0 mers to download a 

The service provider wants to eva luation. 
version of. the image with reduced ■ ■ ^ service and 

■i that want to publish an image, pay ' 
journals, that ™ full quality image, 

are then allowed to download a full qu 

wants to minimize storage space 
However, such a service provider wants^ alternatively 
and download bit rates. An ^age p ^ ^ ^ ^ given 

^ to distribute images on ^ ^ ^ afc a 

away or sold for a low prxce. Cu ^ afc full 

reduced quality, but they must pay ^ use the stor age 

,. rase the image provider 

quality, in the case tn possible, 
space on the CD-ROM as efficiently 
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can be produced according to several 
A reduced quality image can oe pa- 

different main schemes, such as: 

1} Reduced resolution _ 

2, Reduced accuracy of the transform coefficients 

3) delusion of predefined regions of Merest <HOX, 

^- ^ that a reduced quality image is 
of the transform coefficients. 

image oat different versions of an 

Thus, there is no need to store c rii£ f er ent quality 

•«= ^ff-rent users are to have access to different quax y 
image if different users transmission time s become much 

of the one and same image. Also tr resolut ion, 
Xower if the information content of the first 1 Qn 
i^age data can be reused when transmitting the high 
image data. 

BRIEF »*SC*™™ « « J«™ ribed ±n BQte detail Md 

. Fig. 1 is a general view of ^ 

. Figs. 2a and 2b shows encryption o£ images 

th ^ 2000 standard^ ^ _ steps carr£ed . out 
— Fi-.g • *^ 

• when encrypting an ijnage. client server process. 

. Fig. 4 is a diagram illustrating a client 
. J g _ s is a view of an encryption header 

DETAIIjED DESCRIPTION ■ stncM « of an original, 

in Fig. 1. a general view of the £i ^ m> 

hig h resolution, ^^^^^pendently decodahle coding 
consists of a number of , * truet »r. showh in Fig. 

sections 101, 103 ^"^"^w Solution version of a high 
the action 101 which is a^ ^ ^therefore 

resolution image, is coae 

be possible to decode by any receiver. 
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rticm 103 which comprises data, which combined with the 
The sectxon 103 whxc ^ resoluti on version of 

data of sectxon 101, result x & f±r8t encrypti on 

f>ia h i a h resolution xmage, is encxypu 3 

section 103 . 

. -aata which combined with the 
i rm which comprises aaxa, wiu«-u 

£ section i^and »3 results in a f»H 

ol thAigh resolution i*age. is encrypted using a second 

o£ the ug _ receivers having access to the 

- - - —e the data stored in the 

section 105. 

. „ „f the section 101 will result in a low 

Thus, decodxng of the ** C ^ ^ tion 109 and decoding of the 

— 3^.™ed°^ tnf — 

115. 

• in the JPEG 2000 standard without 
Furthermore, implementatxon Verification 

K0I , se e Charilaos codlng mi t of the 

ro^tirJcan r/inserted in the bits-ee, so that a „ide 
range of progressive .odes can he supported. 

a -. 9 o a coding unit is a part of 
tt ^ aooo - i£iMCi ^ de spe C i ic oltpxane of a given 
th. bitstream that enc » =an be describe d as any 

subb aud. xn genera ^ ^^ V^ge information. The general 
independently dacodab order is to include so 

nechanis* for ^"^^ n ext coding unit tit is 
called tags that specifies the bitp lane order is 

sufficient to specify the ^J^ef ined in the header that 
ta own, . several specific .odes can be ^ ^ ^ 

aefines a default coding urn 

are needed for inserting explicit tags. 
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In Figs. 2a and 2* bio* diagram descrying how encryption can 
be implemented in the JPEG 2000 encoder and decoder 
respectively, are shown. 

•m, . in Fiq 2a a block diagram where encryption is performed 
2: i ntropy coding in the encoder is shown. Coding units enter 
an entropr=oding block 2.1. m the block 201 coding the coding 
units are entropy coded using some suitable entropy 
outout from the block 201 is fed to a selector which selects a 
output from t entropy coded coding unit . 

suitable encryption method for each ent py 

some coding units can be selected to not be encrypted at all. 

m response to the selection made in the ^"^f*^ 
entropy coded coding units are encrypted in a block 205 The 
encrypted coding units together with the not encrypted coding 
Ti^then form a combined output data stream, which can be 

stored or transmitted. 

-^^Tu^^^Z^Z not 

elects a suitable decryptxon method tor e 
which selects a recei ved coding unit is not 

coded coding unit, or if tne 
encrypted it is directly transmitted to 

, n the selection made in the selector 255 the 
in response to the selec a block 25 3 using a 

entropy coded coding units are ^™ coding ^ are 

stable -«^^*-r^ 5 S the coding units 
then fed to the block 255. In th ^ decryption 

fro, fed directly from the **^J££ tQ form a combined 

bl oc k 253 are entropy ^TJ* stream which is fed 

output data stream corresponding to the 

to the entropy coding bloc, 201 m Fig- 2a. 

Ea ch coding ^^^^Z^^ i:^- 

Figs . 2a and 2b is handl •* * separately with any user 

Ea =h coding unit can also be ^n cryp ^ ^ ^ image 

rr:^^- — * methods - The 
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., hod used can further be an encryption algorithm 
encryption method used can aen erating keywords, 

combined with a keyword or a method for generate g 

mohhnHt! can in such an embodiment have 
Di£fer ent encrypt t keyvords . Encryption Method 

identical algorithms dul global data 

ascription (EMD) as shown in Frgs » * is needed 

such as session keywords or algorithm identif iers tha 
^specify the Encryption Method. unit Encryption State (UES) is 
a syTol that for each coding unit defines how it - encrypted. 

m Fig 3 a flow chart illustrating different steps carried out 
I ivotin, an i*age are shown. First, in a step 301. an 
I^geToTe Partttlly encrypted is received. The image received 
Tftep 301 is then coded using a coding algorithm generate ng 
indigently decodable cCing units, e.g. *«. -00. in a step 



303. 



■ .«n 305 some of the coding units of the image coded 
"^UT^ a~ encrypted using some suitable encryption method, 
m step 303 are enc chosen to be encrypted 

S uch as D ES. The ^ ^ ferences . Tn us. a user can 

can be set in accordance with user p ^ 
chose to have coding units =° = ^ ^ d ^ units 

^'■^^^runl^Thrch-arr^encrypted are merged into a 
and the coding units wnxv, 

single bit stream. 

whe n transmitting an ^ is shown . Tnus , a client 

described in conjunction with ^ can then issue 

401 is connected to a ^ t " ^ a partic^ar image, step 
a request towards the server * u 



405. 



„. server ,03 replies by 

i.nage which are not ^ client who now will have 

coding units can be decoded by the ell ^ ^ ^ 

access to a low to have access t 

B ased on this t J £ ull image. « so the 

the image in a higher resol 
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client transmits a request to the server requesting such 
information, step 409- 

The server replies by sending a revest to the client revesting 
the client to agree to the conditions for * 
higher resolution version o£ the image, step 411. If the client 
^rees via a message 413. e.g. comprising a card number or 
Account number from which to bill the cost for the image the 
™ sends the encrypted coding units together with a *ey word 
by means of which the encrypted coding units can »» 

41=. A secure method for hey distribution should be used. 
^Us of such secure methods are described in W. Stalling 
T^Z and computer Communications-, p 635 -637. Prentice-Hall 
1997 fifth edition ISBS 0-13-571274-2. 

" e -LTsliscrib^Terein. The scheme as descried 

transmitted. Instead t« word (s) which are 

n.^ rn have access to the Key w<_u.u.v=/ 

^rtoTcry;: ^encrypted coding units of the 

In the case when the method -d device as described herein^ ^ 
used when encoding image according, to the j»» 200 
i. advantageous if the 0»> 2000 "^f^^^ in the 
encryption -^J^^Z - — «*> 

r ^OO^r rStead be used to specify how coding 
units are decrypted. 

,v, a tpfg 2000 image header contains an 
In such an embodiment the ^0 g ^ ^ ^ 

""^T ration Header (EH) should then be appended to 

Z^XTo ^header and encryption information can 
optionally be merged into JPEG 2000 Tags. 

»• 5 an encryption header is shown. The Encryption Header 
In Fig. 5 an encryp „ . . n the following symbols, 

can in such an embodiment contain the to 
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« Mori^ (EM) 'A set of standard encryption modes are 
1) Encryption Mode • ^ 

defined e.g. 

a) One encryption, method is used for all coding units 

b ^tplaneTof less significance than bitplane X axe encrypted 

c) Subbands of higher resolution than Y are encrypted 

d) ROIs specified in are encrypted, etc. 

No encryption information need to included in the Tags if an EM 
is defined. 

2) Encryption Mode Parameters (BMP). Parameters (X, Y. ...) that 
are used to define the Encryption Mode are set here. 

3) Kumber of encryption methods used. Several encryption methods 
1 Tused within the same image if e.g. different user groups 
should be allowed to see different image content. 

« ,>,^ noscribtor (EMD) for each encryption 

4) One Encryption Method Descriptor i 

— "^T^ TZ ^ of'^ wm be to include . -Y-d 
is defined. A typical use or ™ supplies a 

each encryption method. M »» 

fm each coding unit specify it " is 
5) The bitstrean, mist for «<* * BeCting one 

encrypted and if « >JV £ ^'pTcoU .nit. These 
D nit -""^^^ J^d in the encryption header or 

^tribute* in r -™ — ^h^ « 

coding units appears in the bit stream. 

. ^ j G r\ot a i ven in the 
IF EF is set and the. Encryption State is 9 
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•n»n 5000 Taas can be expanded to contain Unit 
r^iol sta synods. UKS defines which encryption 

7:™: Z Z t - - — for encrypting the next codxng 
unit . 

form coefficients belonging to a ROI can be handled as 

T ZTS lZ ^ - «^«^ « partially • ncrwt " d 

described ar>ove . ^ t . 

by selecting appropriate coding units belongmg to the for 

encryption. 

w. -i » fhat the shape of the ROI might reveal the 

zzz irir^Tj:^ it u. = d i r it 

to show a reduced quality i»age since xt » dxffroult to 
interpret the coded transform coefficients. 

„, „' _ be solved by defining a so called cloaking 

T T ZZT Thus the rial shape of one or several ROXs are 
shape (c-shape . Thus^ t ^ . g designed to 

nTrlvtal — ■ * — — " «* ' ~ 

shape is a bounding box. 

• i~ -pot in the JPEG 2000 bit 

stream. The c-shape s Verification Model 

Charilaos c ^ ist ° P ° Ul °* ^ techniqu e as described therein 
version 2.0. -cording - the t«*a £ ^ ^ ^ ^ 

this would result in that the snap 



header. 



, ' •„„ me c-shape and the transform 
X mas* is created ^ ^ [J coded ^ encrypted 

coefficients belonging to the c P ^ fchat 

usi ng the method as described ^--^ _ shielded 

all coefficients belongxng to aay ^ ^ ^ ^ 

by the c-shape are encrypted. The tex 
protected by encryption. 

T he shape of ^LZ^^ZZ^ *~ 

encryption header. The encr ^ corresponding c-shape. 



The decoder can 
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^longing to the =-shape is a!so decrypted. The bitstream can 
not be rearranged so that the =-shape is dropped and the 
ot^ROX data structures are restored. Bote that this is 
done in the compressed domain. 

The mas, that is used for encoding a ROI is not ™**£Y £ ^ 
in JPEG 2000. A mask that is sufficiently large so that the ROI 
in JPEG 2000 lQwer subbands . A 

is encoded lossless will often ^ encoding 
mask that is not allowed to expand will lead to y 
"the ROI. The masks belonging to different HOI. or to a ROI 
and the background can be designed to overlap This »eans that 

ff . , pnts ^ encoded in more than one ROI- Sucn 
some coef f icients are e ^ compre ssion but the ROIs 

overlap wxll lead to a reauc accessed and decoded 

are more independent so that any ROI can be accesse 

with a good visual result. 

a e^r- wois described herein is not 
.he partial encryption -f^J?^ the .as, is selected 
pendent of the choice ™ reconstructed from the 
sa that the -"tent of a ROI = ft ^ £ot builaing a 

content of any other ROI or b gr libed in charilaos 

~* °~ ft TeT o Verification Model version 2 .0. 

Christopoulos (ed.), JPEG 

• th e method and device as described herein storage and 
By using the metnoa an _ tially encrypted images is 

-t^rohrectTa ed coition and processing of 
educed. Furthermore, and ROIs can be encrypted, 

encrypted ^^V^s^ encrypted and the ordinal 

-tTJU^ - restored in the compressed domain. 

• , 1 encryption does not need to be 
another advantage is that encryp . ^ 

performed at the same time a - * n (at che 

PrOCeSS v nf a :; I Ts ossfble to encode all images — 
bitstream syntax) it P r£orme d just before 

encryption. The encryption xn this case, 

transmitting the image by a parser 
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transmitting it. 
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CLAIMS 



mathpd of partially encrypting i*age data comprising the 

fcclilTthe 1^ -ta using an encoding algorithm generating 
independently decodable coding units, 

. . one of the coding units, and 

: — - a with 00311,9 

which are encrypted into a combined bitstream. 

a X »etb=d according to claim 1. ^actarised in that the not 
encrypted coding units correspond to a low resolution version of 
the image data* 

3 * method according to any of clains 1-2, -»~ t « 1 **j* ■ 

different coding units are encrypted using different coding 

methods • 

4 K method according to any of claims 1-3, ~r*-£*J* 
that an encryption flag, »ni=b indicates if a coding unit is 
encrypted, is inserted in the bit stream. 

5 , method according to any of claims 1 - 4. when information 

„ a Reoion of interest is encrypted, 
corresponding to a Regie r o£ interest „ 

characterized in that taie su^ 

enclosed in a cloaking shape. 

.. A device for partial encryption of image data characterised 

^means for coding the image data ^^-J^^. 
alg9r ithm generating —^^0^4 at least 
- means connected to tne co * 

one of the coding units, and encrypted with 

. .eans for merging coding bitstr eam. 
coding units which are encrypted, as 

^ ,,4- 6 characterized by means for 
7 . a device codi ; g as units corresponding 

selecting the not encryp 
to a low resolution version of the mag 
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^ T^ we a - 7 characterized by 
... * device according to any of cla^ ^ 

for-encryp^g «*™ unit, using 

coding methods. 

X device according to any of cia^s s - 
neans for inserting an encryption flag, vnich md 
unit is encrypted, in t*e bit stream. 

, (mto of claias 6-9. characterised W 

10 . » device ^7^.^ interest sfcape in a cloaKing 
means for enclosing a region 

shape. 
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